From: Robert-L-Turner <37597024+Robert-L-Turner@users.noreply.github.com>
Date: Mon, 22 Nov 2021 11:43:44 +0000 (+0800)
Subject: FIDO2 device removal instructions (#21426)
X-Git-Tag: v250-rc1~190
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6d5ea0f127e60ca6c7ecc83eff4618111b7c831b;p=thirdparty%2Fsystemd.git

FIDO2 device removal instructions (#21426)

* man: document FIDO2 device removal

Indicate to users how to remove FIDO2 device in the --fido2-device=path section by setting path to an empty string ("").  Tested on systemd 249 (249.6-3-arch)
---

diff --git a/man/homectl.xml b/man/homectl.xml
index 6ed8e90bf1e..89af3d77c7f 100644
--- a/man/homectl.xml
+++ b/man/homectl.xml
@@ -376,6 +376,9 @@
         <para>Note that FIDO2 devices suitable for this option must implement the
         <literal>hmac-secret</literal> extension. Most current devices (such as the YubiKey 5 series) do. If
         the extension is not implemented the device cannot be used for unlocking home directories.</para>
+          
+        <para>The FIDO2 device may be subsequently removed by setting the device path to an empty string 
+        (e.g. <command>homectl update $USER --fido2-device=""</command>).</para>
 
         <para>Note that many hardware security tokens implement both FIDO2 and PKCS#11/PIV (and thus may be
         used with either <option>--fido2-device=</option> or <option>--pkcs11-token-uri=</option>), for a